Centralized throttling service

ABSTRACT

A method and system are provided that may centralize the management of applications that access the data of social networks via API calls. A central service may generate tokens at a generation rate that permit an application to access an API. The tokens may be distributed to queues associated with certain content types. The relative distribution of tokens to each queue may be determined by rules. A queue may release tokens to applications that function to access the content type associated with the queue. The token generation rate and rules may be selected to prevent violation of the rate limits for the API.

BACKGROUND

Social networks grant and control access to their data throughApplication Programming Interfaces (APIs). For example, a social networktypically provides various forms of basic data stored by the socialnetwork and/or analytical data generated based on data aggregated frommultiple users via such an API. Social networks typically require anyentity making use of the API to have an account that provides access tothe API. The account is then used to gain access to the API. Forexample, a social network may maintain an API that permits applicationsof an external account, such as social media listening applications, toaccess the posts of the social network's users. APIs typically establisha limit on the rate at which an external account's applications may makecalls to the API's data, for example to prevent malicious orunintentional over-use of the resources of the social network API. Ifthis rate limit is exceeded, the social network typically will restrictthe rate at which the account can make further API calls for a period oftime, prevent the types of API calls available to the account, or imposeother limits on API use by the same account.

BRIEF DESCRIPTION OF THE DRAWINGS

The accompanying drawings, which are included to provide a furtherunderstanding of the disclosed subject matter, are incorporated in andconstitute a part of this specification. The drawings also illustrateimplementations of the disclosed subject matter and together with thedetailed description serve to explain the principles of implementationsof the disclosed subject matter. No attempt is made to show structuraldetails in more detail than may be necessary for a fundamentalunderstanding of the disclosed subject matter and various ways in whichit may be practiced.

FIG. 1 shows an example system diagram of an analysis system and asource system according to an embodiment of the disclosed subjectmatter.

FIG. 2 shows an example flow diagram of a method for managing API ratelimits according to an embodiment of the disclosed subject matter.

FIG. 3A shows an example token distribution process according to anembodiment of the disclosed subject matter.

FIG. 3B shows an example token distribution process according to anembodiment of the disclosed subject matter.

FIG. 3C shows an example token distribution process according to anembodiment of the disclosed subject matter.

FIG. 3D shows an example token distribution process according to anembodiment of the disclosed subject matter.

FIG. 4 shows an example flow diagram of a method for executing a backoffpolicy according to an embodiment of the disclosed subject matter.

FIG. 5 shows an example system diagram of a system for managing API ratelimits according to an embodiment of the disclosed subject matter.

FIG. 6 shows an example token distribution process implementing a tokencache according to an embodiment of the disclosed subject matter.

FIG. 7. shows an example computer suitable for implementations ofembodiments of the disclosed subject matter.

FIG. 8. shows an example network arrangement suitable forimplementations of embodiments of the disclosed subject matter.

DETAILED DESCRIPTION

When accessing a social network's data as previously described, a singleaccount may deploy multiple instances of its application, such as inmultiple instances of a virtual machine. For example, a social mediamonitoring service may use a single account to access a social networkvia an API of the social network. When scaled to service multiple users,multiple instances of applications used by the social monitoring servicemay use a single account. Although each instance of the application mayindividually comply with the social network's API rate limit, theaggregate rate across all instances of the application may significantlyexceed the limit. As a result the API may block further API calls by theaccount's applications.

To address these issues, the present disclosure sets forth methods andsystems that may centralize the management of all instances ofapplications that access the data of social networks via API calls.These methods and systems may be implemented as a throttling service toprevent or manage API rate limit errors. An account may require alltypes of applications and instances of applications that access aparticular source system to register with the throttling service. Thethrottling service may generate tokens that permit an application toaccess the API of the social network, which are distributed into queueshaving different rate limits and different associations with contenttypes. The throttling service governs the token generation rate and therelative distribution of tokens into the queues, so that the accountavoids rate limit violations even when access by multiple applicationsand/or application instances are considered in aggregate. If the accountreceives a rate limit violation, the throttling service may execute abackoff policy that limits or prevents further violations.

FIG. 1 shows an example system diagram as an example environment inwhich embodiments of the disclosed subject matter may operate. Analysissystem 100 may be any computerized system associated with an accountthat includes application 130 for accessing the data of a socialnetwork. For example, an application 130 may be a social media listeningapplication associated with an account and implemented across computersand databases coupled to a network in communication with a socialnetwork. A social network may include a social media service, an instantmessaging service, or any other application that allows users to publishor transmit text messages, images, audio, video, user location, or othermedia messages to other users.

Application 130 may be any application suitable for capturing and/oranalyzing content associated with social network. For example,application 130 may include processes for searching and capturingcomments on videos posted on a social network. Content may includepublished content such as text, images, video, or audio posted by a userof a social network, or unpublished content such as a user's location,the time of day when a post is made, the number of a user's socialnetwork connections, a message sent by a user of an instant messagingservice, or metadata associated with a user. In general, applicationssuch as application 130 may monitor and/or collect general or specificmessages that are transmitted or otherwise made available within asocial network. The application also may filter the messages or otherdata to identify those that meet specific criteria, provide aggregatedata about messages in a message stream, or perform other datacollection and analytic functions based upon data obtained from thesocial network.

Source System 110 may be any computerized system that hosts, manages,and controls content on a social network. For example, an analysissystem may include a social media website for hosting and connectingvideos posted by users, which is implemented across computers anddatabases coupled to a network in communication with the internet. Suchcontent may be stored in source system data 160 and accessed through API150.

API 150 may be any set of specifications for routines, data structures,object classes, remote calls, variables, and the like that are exposedto application 130 in order to facilitate access to data, hardware, andother functionality of source system 110. APIs may have rate limits orquotas that are imposed by the source system 110. Rate limits mayspecify how many calls an external application may make within aspecified period of time, referred to as a rate window, to the data orprocesses controlled by an API. When a rate limit is exceeded, the APImay return a rate limit error instead of or in conjunction with otherdata that would normally be returned by the API, which indicates that arate limit has been exceeded. A rate limit also may be referred to as aquota or a quota limit, and a rate limit error as a quota error or aquota limit error. In some cases, a rate limit may be specified by theprovider of an API, but the API may not provide an indication of whensuch a limit has been reached by a particular account or application. Insuch cases an application accessing an API may appear to bemalfunctioning since the API may not provide responses as expected bythe application.

Queue 125 may be a store of tokens, each of which permit the application130 to make an API call over network 140. Queues and applications mayeach be associated with a particular content type such that theapplications may only capture a particular content type and queues mayonly transfer tokens to those types of applications.

A throttling service 120 operates in communication with queue 125 andapplication 130 to manage the rate at which application 130 makes APIcalls. For example, throttling service 120 may generate tokens andimplement rules governing the distribution of the tokens into queue 125.Further details regarding the structure and operation of throttlingservice 120 are provided below.

FIG. 2 shows an example flow diagram of a method 200 for managing APIrate limits according to an embodiment of the disclosed subject matter,such as may be performed by a throttling service as disclosed herein.All applications for an account may be required to register with thethrottling service and receive a token before making an API call. Thethrottling service may govern the token generation and distribution, andthereby govern the rate of API calls.

Method 200 may include generating a plurality of tokens at a tokengeneration rate at 210. A token may be a string such as a JavaScriptObject Notation (JSON) string, which contains a value and an expirationtime. The token generation rate may be configured to issue tokens at arate at or below the rate limit specified by a source system. Thethrottling service may also periodically request current rate limitpolicy updates from a source system such as system 110, and employ theseupdates as a basis for adjusting the token generation rate. For example,if the source system returns a rate limit policy update that reduces thenumber of API calls allowed from 100 to 80 API calls per hour, and thecurrent token generation rate is 75 API calls per hour, then thethrottling service may reduce the token generation rate by a value, suchas 33%, to 50 API calls per hour in order to prevent a rate limit error.In addition, a token generation rate may be increased. For example ifthe source system returns a rate limit policy that is 80 API calls perhour and the current token generation rate is at a value less than 80,such as 50% less, then the token generation rate may be increased to avalue, such as 80% of the rate limit policy, or 64 API calls per hour.

At 220, method 200 may include selecting a queue associated with anapplication. This selection may be based upon a range of criteria,including a priority rule and a distribution rule. A queue may be anyprocess or component suitable to receive a token from a token generatorand make that token available to an application. For example, a queuemay be an instance of a server established to distribute tokens, such asa remote dictionary server, a remote data structure server, or any othersuitable system. A queue may be associated with a particular contenttype such that it only distributes tokens to applications that accessdata with that content type. For example, a queue may be associated withuser comments on a social network and only transfer tokens toapplications that make API calls on user comments of the social network.

Implementations of method 200 may include selecting from amongstmultiple queues or a single queue. For example, in implementations whererate limiting is being controlled solely through limits on the tokengeneration rate, there may be only one queue and that single queue mayalways be selected. In other implementations a queue may be selectedfrom amongst multiple options.

Selections of queues from amongst multiple queues may be based upon arange of criteria, including a priority rule and a distribution rule.For example, a source system may include a social network that allowsusers to post content such as text, audio, photos, video, andinteractive games, as well as to comment on these posts. The sourcesystem may have one rate limit for posts that allows at most 60 APIcalls per hour and a second rate limit for comments that allows at most40 API calls per hour. In an embodiment of method 200, a throttlingservice may generate a posts queue and a comments queue and configurethe token generation rate to 100 tokens per hour based on configurationdata received for the source system. A throttling service as previouslydescribed may then manage an application that captures data from users'posts and an application that captures data from users' comments.Continuing the example, the throttling service may be configured withcriteria including a distribution rule that may specify that 60% of allAPI calls may be made by applications calling on post data and 40% ofall API calls may be made by applications calling on comments data. Inaccordance with this rule, the throttling service may distribute tokenssuch that 60% of the tokens may be distributed to the posts queue and40% of the tokens may be distributed to the comments queue. During a onehour rate limit window, a token generator may generate 100 tokens, whichmay allow 100 API calls. 60% of these calls may be made by the postsapplication and 40% may be made by the comments application. Thereforeduring the 1 hour rate limit window, 60 API calls may be made to postscontent and 40 API calls may be made to comments content, and thus theaccount may comply with the source system rate limits.

Token distributions may be made by employing statistical distributionalgorithms. A range of token distribution rules may be employeddepending on the implementation and number of queues. For example a rulemay require 20% to a first queue and 80% to a second queue; a rule mayrequire 20% to a first queue, 50% to a second queue, and 30% to a thirdqueue; a rule may require 2% to a first queue, 38% to a second queue,15% to third queue, and 45% to a fourth queue, and so forth.

In another example having a posts queue and a comments queue, a priorityrule may specify that if both queues are empty, the next available tokenis transferred to the posts queue over the comments queue. In otherwords, a token is transferred to the comments queue only if the postsqueue already has a token. Such configurations may be desirable incircumstances, for example, where the account is designed to capture asmuch post data as possible and only capture comment data if there is nopost data available. Additional examples of suitable rules are discussedin later portions of this disclosure.

Continuing the example, method 200 may provide a token to an applicationthrough a selected queue at 230. For example, an application thatcaptures data from user posts may wait at a posts queue until the postsqueue receives a token from the token generator and passes that token tothe application. Once the application receives the token it may make anAPI call.

In some embodiments of method 200, configurations of the tokengeneration rate and rules may not prevent a source system from issuing arate limit error. For example, the rate limit of a source system may bedynamic and vary for reasons undetectable to an analysis system. Incircumstances such as this, embodiments of this disclosure may receive arate limit error at 240 and execute a backoff policy at 250 to reducethe rate of API calls. For example, the backoff policy may reduce thetoken generation rate or pause the generation of new tokens entirely.Additional examples of suitable backoff policies are discussed in latterportions of this disclosure.

FIGS. 3A-3D show an example token distribution process 300 according toan embodiment of the disclosed subject matter. In FIG. 3A, application Y350 may be associated with content type Y. Application Y may wait fortoken generator 320 to generate a token and distribute it to queue Y at325. Queue Y may also be associated with content type Y. In FIG. 3B,token 340 may be transferred to queue Y in accordance with rules 320. InFIG. 3C, token 340 may be transferred from queue Y to application Y. InFIG. 3D, application Y may possess token 340 and proceed to make an APIcall on content type Y.

Rules 300 may be rate limits set by the API for certain functions, suchas source system category rules. For example, a source system categoryrule may include: a rate limit for a user of the source system, a ratelimit for a category of users of the source system, a rate limit for acategory of published content of users of the source system, or a ratelimit for a category of unpublished content of users of the sourcesystem. In embodiments employing source system category rules, thethrottling service may govern rate limits for applicable categoriesfirst by the overall token generation rate and second by a rate limitrule for that category.

In an example, an API may specify a rate limit for a category ofpublications of users of a source system, for example a call thatreturns all relevant posts on a social media network that match aspecified query. For example the call could be titled“get.search/posts,” and it may return all user posts relevant to thesearch term “dog.” In FIGS. 3A-3D queue Y may be generated as the queuethat transfers tokens for applications that make get_search/postsrequests, and application Y may be designated as the type of applicationthat makes get_search/posts requests. The social network may limit thenumber times a get_search/posts call may be made to 15 get_search/postscalls per account per 15 minute window. A rule based on theget_search/posts limit may limit the rate tokens are distributed toqueue Y such that no more than 15 tokens are transferred to queue Y in a15 minute window, regardless of the overall token generation rate. Inthis way all applications that make get_search/posts calls may belimited to making at most 15 get_search/posts calls in every 15 minutewindow. The rate limit of the rule may match the API specified ratelimit or it may be more or less frequent. For example, in order tofurther ensure that rate limits are not violated, the get_search/postslimit may be reduced to 12 calls every 15 minutes.

In another example an API may specify a call that returns all datarepresenting all posts on the “timelines” of users that match aspecified query. For example the call could be titled“get_user_timeline,” and it could return all timelines from users thatmatch a query for “age 18-34.” In FIGS. 3A-3D queue Z may be generatedas the queue that transfers tokens for applications that makeget_user_timeline requests. The API of the social network may limit thenumber of times this call may be made to a particular user's timeline orgroup of user's timelines to 30 get_user_timeline calls per account, per15 minute window. A rule based on the get_user_timeline limit may limitthe rate at which tokens are distributed to queue Z such that no morethan 30 tokens are transferred to queue Z every 15 minutes. In this wayall applications that make get_user_timeline requests may be limited tomaking at most 30 get_user_timeline calls in every 15 minute window.

In an example, an API may specify a rate limit for a category ofunpublished content of the source system, such as a call that returnsall data representing the “friends” connected to a particular user on asocial network. For example the call could be titled “get_friends/list.”In FIGS. 3A-3D queue X may be generated as the queue that transferstokens for applications that make get friendsilist requests. The socialnetwork may limit the number of times this call may be made to 30get_fricnds lists request per account per 15 minute window. A rule basedon the get_friends/lists limit may limit the rate tokens are distributedto queue X such that no more than 30 tokens are transferred to queue Xevery 15 minutes. In this way all applications that makeget_friends/lists requests may be limited to making at most 30get_friends/lists calls in every 15 minute window. Other unpublishedcontent may also be specified as a call type for an API, such as, forexample, metadata related to the locations where posts are made or timesof day when posts are made.

Some source system APIs may enforce rate limits at the user level. Forexample, a social network may limit the number of API calls to 15 callsper 15 minute window for status posts of each user of the social networkor for each user within a certain category, such as users deemed to be“influencers.” In these circumstances, an embodiment of the disclosedsubject matter may, for example, create a queue as a database instancefor each user. For example, the queue may specify the user's username orID and the source and category of content authorized. A rule for thisqueue may be set that limits token transfers to 15 tokens per 15 minutewindow. Applications configured to make a call for a specific user'sdata may then be required to request a token from the specific user'squeue and thus be limited to 15 tokens per 15 minute window. User dataof the social network may change over time and user queues mayfrequently be removed and new queues may be established. User queuespecifications and rule specifications may be received by the throttlingservice as a regularly updated thread or as updated configuration data.

In some embodiments, multiple rules may operate in combination todetermine the overall distribution of tokens. For example, an analysissystem may employ applications that access user post data and usercomments data on a social network and include a post queue and acomments queue. The analysis system may include a priority rule thatrequires an available token to be distributed to the posts queue beforethe comments queue unless the posts queue already has a token. However,the analysis system may also include a distribution rule that requiresno more than 60% of the tokens in a one hour window to be distributed tothe posts queue. The token generation rate may be set to distribute 100tokens per hour and then reset. The rules may then function incombination such that the priority rule may take precedence and transferwith priority, tokens to the posts queue. If the posts queue receives 60tokens before the expiration of the window, then all other tokensgenerated in the period may be distributed to the comments queue.

In another example, an application may be eligible to receive tokensfrom multiple queues. For example, a single application may beauthorized to make calls to both posts and comments in a social network.A throttling service may be implemented with a posts queue and acomments queue, a token generation rate, and a rule that distributestokens equally amongst all queues. The throttling service may receiveconfiguration data including a list specifying priority amongst queuesfor specific applications. An application may register with thethrottling service and receive the queue priority list. The applicationmay submit the list back to the throttling service when the applicationrequests a token. The list may be used as a key by the throttlingservice to authenticate the application. When requesting a token, theapplication may issue a command in reference to the queue priority list.The throttling service may then attempt to transfer a token to theapplication from each queue in the queue priority list according to thequeue's priority. If no token is available after completing the list,then the application may be blocked from further API calls until a tokenis distributed into a queue and transferred to the application. As aspecific example, in an embodiment in which a dictionary server or otherkey-value store is used to manage tokens, a blocking list pop primitive(BLPOP) type command structure may be used to retrieve tokens. Otherapplications in the same analysis system may receive different queuepriority lists.

In circumstances where a rate limit error is received, embodiments ofthis disclosure may invoke a backoff policy that begins to issue tokensat a slower rate or pauses queues until it is safe to ramp back up toinitial token generation rates. The throttling service may alsoestablish channels within the database instances storing the queueservers, through which applications may publish messages indicating ratelimit errors and performance statistics. FIG. 4 shows an example flowdiagram of a method 400 for executing a backoff policy according to anembodiment of the disclosed subject matter. At 410 a throttling servicemay receive a rate limit error from a source system. For example, anapplication may receive the rate limit error from the source system andpublish the rate limit error to a channel in a queuing server. Thethrottling service may subscribe to this channel to receive the ratelimit error.

The method 400 for executing the backoff policy may optionally storeperformance data, including the rate limit error at 420. The performancedata may include information such as the token generation rate, rules,applications, and source systems that were operating at the time therate limit error was received, as well as the rate limit error itself.The method 400 may also periodically collect performance data incircumstances where there is no rate limit error received. Performancedata may be used to adjust or optimize aspects of the throttlingservice, or the performance data may be stored and distributed to othersystems. For example, an application may publish performance data as aJSON document to a performance data channel in a queuing server andthereby communicate it to the throttling service.

Upon receipt of a rate limit error, the method 400 may purge thegenerated tokens from the queue at 430 and generate new tokens at areduced token generation rate at 440. For example, a rate limit errormay be received that indicates a rate limit of 80 calls per 15 minutewindow has been exceed. The new token generation rate may be reduced toa frequency below 80 calls per 15 minute window, such as 70 calls per 15minute window. In another example, after receiving a rate limit errorthat did not indicate the current source system rate limit, anapplication of an analysis system may make an API call that returns thecurrent source system rate limit. The new token generation rate may beselected to be at a frequency below the current source system rate. Inanother example, a new token generation rate may be set as anexponential backoff rate. For example, the new token generation rate maybe an exponentially decreasing rate, such that for each rate limit errorreceived, a new token generation rate may be generated that has anexponentially increasing probability that the delay between thegeneration of individual tokens will be increased.

In some circumstances, method 400 may purge all existing tokens andpause the service for a period of time. For example, it may be knownthat the source system “blacklists” or denies API access to applicationsentirely or for a specific period of time after the source system issuesa rate limit error. In another example a received rate limit error mayspecify a period of time before the source system will allow further APIcalls. Also, as above, a further API call may be permitted to return thecurrent rate limits for the source system as well as any blacklist timeperiods. Any or all of this information may be used as a basis for whichthe backoff policy selects a suspension time period. For example if itis known that the source system automatically suspends further API callsfor one hour after issuing a rate limit error, then the back off policymay suspend issuance of further tokens until an hour has expired.Information about a specific source system, including the policiesapplied to API usage, may be stored in a source configuration for thesource system, which may be retrieved in specific instances to determinewhen and how a backoff policy should be implemented.

Aspects of the disclosed subject matter may be implemented in and usedwith a variety of component and network architectures. For example, FIG.5 shows an example system diagram of a system 500 for managing API ratelimits according to an embodiment of the disclosed subject matter.System 500 may include a database 530 storing a source configuration 535and a processor 510 in communication with the database, such as throughnetwork 520.

Source configuration 535 may include a range of specifications forinteracting with a source system. For example, the source configurationmay include the source system and content types, queue types for thesource content types, a source token generation rate, a source backoffpolicy, and rules for determining token distribution, such as anapplication priority rule, an application distribution rule, and/or asource system category rule. The source configuration may be received bythe throttling service or it may be preloaded on a database accessibleto the throttling service. Once a source configuration is loaded, it maycreate the queues specified in the source configuration and otherwiseprepare the throttling service for interacting with applications.

In some embodiments, applications as disclosed herein may be required toregister with the throttling service before making API calls. Forexample, a socket server and listener may be initiated when thethrottling service is started. The listener may process socket messagesreceived by the socket server that contain a registration request by anapplication. When a registration request is received, the throttlingservice may authenticate the application to ensure it is approved forthe source system. If the application is approved, the service may thenmake queue data and rules data available to the application, as well asdata specifying channels through which to publish rate limit errors andperformance statistics and data. For example, the throttling service maypublish a JSON document to the application containing queue data, rulesdata, a rate limit error channel, and a performance statistics channel.The application may then configure a queueing server client and employthe queueing server to request tokens.

Continuing the example, once the source configuration is loaded andapplications are registered, processor 240 executes instructions forselecting a token generation rate based upon the source configuration at540. For example, the source configuration may include a source ratelimit. The token generation rate may be based on the sourceconfiguration by, for example, matching the source rate limit orundercutting the source rate limit by a selected value, such as 20%. Asanother example, the token generation rate may be based on the sourceconfiguration by defaulting to a rate specified by the analysis systemunless the default rate exceeded the source configuration rate.

At 545, the processor 240 executes instructions for selecting a queueassociated with an application of an analysis system based upon thesource configuration. As discussed above, the source configuration mayinclude queue types for the source content types and rules fordetermining token distribution, such as an application priority rule, anapplication distribution rule, or a source system category rule.Therefore the queue may be selected based upon the source configuration,by, for example, applying an application priority rule, an applicationdistribution rule, and/or a source system category rule provided by thesource configuration. Methods as set forth in this disclosure may beimplemented in suitable systems, such as system 500.

As discussed above, APIs of certain source systems may enforce userlevel and account or application level rate limits. For example, in anembodiment, a total number of users of the source system may beretrieved from a database that maintains a thread that periodicallypulls user data from the source system and establishes token queues foreach user. The total number of users returned may be multiplied by theuser level rate limit to return a daily total rate limit for all users.The daily user total rate limit may be compared to the account leveldaily rate limit. If the user daily total rate limit exceeds the accountlevel daily rate limit, then the daily user total rate or an equivalent,such as a per second rate limit, may be set as a source system categoryrule for the queues generated for users. An instance of the throttlingservice may be created for each user along with a user-specific queueand backoff policy. The instances of the throttling service may bemapped to provide management functionality. If a rate limit erroroccurs, it may be linked to a specific user. Therefore the tokens ofthat specific user's queue may be purged in whole or in part, or anotherbackoff policy may be executed. The other users' data may remain freelyaccessible via the source system API.

In certain embodiments it may be advantageous to issue tokens at afaster rate than the token generator may be capable of performing. Atoken cache may be employed to store a quantity of pre-generated tokensand make the tokens available to queues. FIG. 6 shows an example tokendistribution process 600 implementing a token cache 610 according to anembodiment of the disclosed subject matter. The token cache 610 is showncontaining a quantity of pre generated tokens 620. Pre-generated tokensmay be pushed all at once to queues 315 in a quantity that exceeds thetoken generation rate.

Implementations of the presently disclosed subject matter may beimplemented in and used with a variety of component and networkarchitectures. FIG. 7 is an example computer 700 suitable forimplementations of the presently disclosed subject matter. The computer700 includes a bus 710 which interconnects major components of thecomputer 700, such as a central processor 780, a memory 770 (typicallyRAM, but which may also include ROM, flash RAM, or the like), aninput/output controller 760, a user display 720, such as a displayscreen via a display adapter, a user input interface 730, which mayinclude one or more controllers and associated user input devices suchas a keyboard, mouse, and the like, and may be closely coupled to theI/O controller 760, fixed storage 740, such as a hard drive, flashstorage, Fibre Channel network, SAN device, SCSI device, and the like,and a removable media component 750 operative to control and receive anoptical disk, flash drive, and the like.

The bus 710 allows data communication between the central processor 780and the memory 770, which may include read-only memory (ROM) or flashmemory (neither shown), and random access memory (RAM) (not shown), aspreviously noted. The RAM is generally the main memory into which theoperating system and application programs are loaded. The ROM or flashmemory can contain, among other code, the Basic Input-Output system(BIOS) which controls basic hardware operation such as the interactionwith peripheral components. Applications resident with the computer 700are generally stored on and accessed via a computer readable medium,such as a hard disk drive (e.g., fixed storage 740), an optical drive,floppy disk, or other storage medium.

The fixed storage 730 may be integral with the computer 700 or may beseparate and accessed through other interfaces. A network interface 790may provide a direct connection to a remote server via a telephone link,to the Internet via an internet service provider (ISP), or a directconnection to a remote server via a direct network link to the Internetvia a POP (point of presence) or other technique. The network interface790 may provide such connection using wireless techniques, includingdigital cellular telephone connection, Cellular Digital Packet Data(CDPD) connection, digital satellite data connection or the like. Forexample, the network interface 790 may allow the computer to communicatewith other computers via one or more local, wide-area, or othernetworks, as shown in FIG. 8.

Many other devices or components (not shown) may be connected in asimilar manner (e.g., document scanners, digital cameras and so on).Conversely, all of the components shown in FIG. 7 need not be present topractice the present disclosure. The components can be interconnected indifferent ways from that shown. The operation of a computer such as thatshown in FIG. 7 is readily known in the art and is not discussed indetail in this application. Code to implement the present disclosure canbe stored in computer-readable storage media such as one or more of thememory 770, fixed storage 740, removable media 750, or on a remotestorage location.

FIG. 8 shows an example network arrangement according to animplementation of the disclosed subject matter. One or more clients 810,820, such as local computers, smart phones, tablet computing devices,and the like may connect to other devices via one or more networks 800.The network may be a local network, wide-area network, the Internet, orany other suitable communication network or networks, and may beimplemented on any suitable platform including wired and/or wirelessnetworks. The clients may communicate with one or more servers 840and/or databases 850. The devices may be directly accessible by theclients 810, 820, or one or more other devices may provide intermediaryaccess such as where a server 840 provides access to resources stored ina database 850. The clients 810, 820 also may access remote platforms830 or services provided by remote platforms 830 such as cloud computingarrangements and services. The remote platform 830 may include one ormore servers 840 and/or databases 850.

More generally, various implementations of the presently disclosedsubject matter may include or be implemented in the form ofcomputer-implemented processes and apparatuses for practicing thoseprocesses. Implementations also may be implemented in the form of acomputer program product having computer program code containinginstructions implemented in non-transitory and/or tangible media, suchas floppy diskettes, CD-ROMs, hard drives, USB (universal serial bus)drives, or any other machine readable storage medium, wherein, when thecomputer program code is loaded into and executed by a computer, thecomputer becomes an apparatus for practicing implementations of thedisclosed subject matter. Implementations also may be implemented in theform of computer program code, for example, whether stored in a storagemedium, loaded into and/or executed by a computer, or transmitted oversome transmission medium, such as over electrical wiring or cabling,through fiber optics, or via electromagnetic radiation, wherein when thecomputer program code is loaded into and executed by a computer, thecomputer becomes an apparatus for practicing implementations of thedisclosed subject matter. When implemented on a general-purposemicroprocessor, the computer program code segments configure themicroprocessor to create specific logic circuits. In someconfigurations, a set of computer-readable instructions stored on acomputer-readable storage medium may be implemented by a general-purposeprocessor, which may transform the general-purpose processor or a devicecontaining the general-purpose processor into a special-purpose deviceconfigured to implement or carry out the instructions. Implementationsmay be implemented using hardware that may include a processor, such asa general purpose microprocessor and/or an Application SpecificIntegrated Circuit (ASIC) that implements all or part of the techniquesaccording to implementations of the disclosed subject matter in hardwareand/or firmware. The processor may be coupled to memory, such as RAM,ROM, flash memory, a hard disk or any other device capable of storingelectronic information. The memory may store instructions adapted to beexecuted by the processor to perform the techniques according toimplementations of the disclosed subject matter.

The foregoing description, for purpose of explanation, has beendescribed with reference to specific implementations. However, theillustrative discussions above are not intended to be exhaustive or tolimit implementations of the disclosed subject matter to the preciseforms disclosed. Many modifications and variations are possible in viewof the above teachings. The implementations were chosen and described inorder to explain the principles of implementations of the disclosedsubject matter and their practical applications, to thereby enableothers skilled in the art to utilize those implementations as well asvarious implementations with various modifications as may be suited tothe particular use contemplated.

1-20. (canceled)
 21. A method comprising: generating, by a computingdevice, a first plurality of tokens, each token configured to providepermission for a corresponding instance of an application to interactwith an application programming interface (API) of a system that isdistinct from the computing device; and receiving, by the computingdevice and from the system, an indication that the correspondinginstance of the system has interacted with the system at a rate thatexceeds a limit.
 22. The method of claim 21, wherein the generating isperformed at a first token generation rate.
 23. The method of claim 22,further comprising generating, by the computing device and in responseto a reception of the indication, a second plurality of tokens at asecond generation rate, the second generation rate being less than thefirst token generation rate.
 24. The method of claim 22, furthercomprising deleting, by the computing device, the first plurality oftokens.
 25. A method comprising: generating, by a computing device, aplurality of tokens, each token configured to provide permission for acorresponding instance of an application to interact with an applicationprogramming interface (API) of a system that is distinct from thecomputing device; and providing, by the computing device, a token, ofthe plurality of tokens, to an instance of the application.
 26. Themethod of claim 25, wherein the generating is performed at a tokengeneration rate.
 27. The method of claim 25, further comprisingselecting, by the computing device, a queue, wherein the providingcomprises providing the token via the queue.
 28. A first systemcomprising: a memory configured to store instructions and tokens; and aprocessor coupled to the memory and configured to process theinstructions: to generate the tokens, to store the tokens in the memory,to retrieve the tokens from the memory, and to make, under a control ofa token of the tokens, a call, via an electronic network to anapplication programming interface of a second system, to receive acontent associated with the second system.
 29. The first system of claim28, wherein the instructions to make the call comprise a social medialistening application.
 30. The first system of claim 28, wherein theapplication programming interface is configured to limit a number ofcalls, within a period of time, for the content to a first rate.
 31. Thefirst system of claim 30, wherein the processor is further configured toreceive, via the electronic network, a message from the second system,the message including information that indicates that the first rate hasbeen exceeded.
 32. The first system of claim 30, wherein theinstructions to make, under the control of the token, the call compriseinstructions to make, at a second rate controlled by the token, thecall.
 33. The first system of claim 32, wherein the second rate is lessthan the first rate.
 34. The first system of claim 32, wherein theinstructions to generate the tokens comprise instructions to generatethe tokens at the second rate.
 35. The first system of claim 34, whereinthe processor is further configured to process: instructions to send,via the electronic network, a first message to the second system, thefirst message including a request for the first rate; instructions toreceive, via the electronic network, a second message from the secondsystem, the second message including information that indicates thefirst rate; and instructions to change, in response to a receipt of theinformation that indicated the first rate, the second rate.
 36. Thefirst system of claim 34, wherein the content comprises a first type ofcontent and a second type of content, wherein the instructions toretrieve the tokens comprise instructions associated with the first typeof content and instructions associated with the second type of content,wherein the instructions to make the call comprise instructions to makethe call to receive the first type of content and instructions to makethe call to receive the second type of content, and wherein theinstructions associated with the first type of content are configured todistribute the tokens only to the instructions to make the call toreceive the first type of content.
 37. The first system of claim 36,wherein the first type of content comprises at least one of a publishedtext file, a published image file, a published video file, a publishedaudio file, a location of user device, a time of day at which a postoccurred, a number of a social network connection, an instant messagingservice message, or metadata associated with a user
 38. The first systemof claim 36, wherein the first rate comprises a first type of contentfirst rate and a second type of content first rate, and wherein thesecond rate comprise a first type of content second rate and a secondtype of content second rate.
 39. The first system of claim 38, whereinthe memory comprises a first portion and a second portion, the firstportion associated with the first type of content, the second portionassociated with the second type of content, and wherein the instructionsto store the tokens comprise instructions to store the tokens in thefirst portion at the first type of content second rate and instructionsto store the tokens in the second portion at the second type of contentsecond rate.
 40. The first system of claim 39, wherein the processor isfurther configured to process instructions to determine that both thefirst portion and the second portion lack the tokens, and wherein theinstructions to store the tokens comprise instructions to store, inresponse to a determination that both the first portion and the secondportion lack the tokens, a next generated token of the tokens in thefirst portion.